$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141070.roa File: AS141070.roa (raw, json) Hash identifier: +coKlf0+HeZ1hUIOw7fLrlzSgwhRSs+/SqEYlr81OFQ= Subject key identifier: 33:D5:F7:74:4E:5B:54:37:34:E5:6E:39:00:B3:B0:8D:2B:EF:7E:7C Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0EA594147CDF2DB38B6CFC55985C9A90FBC1CF76 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141070.roa Signing time: Tue 22 Jul 2025 03:00:00 +0000 ROA not before: Tue 22 Jul 2025 02:55:00 +0000 ROA not after: Tue 21 Jul 2026 03:00:00 +0000 asID: 141070 IP address blocks: 103.165.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 13:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:a5:94:14:7c:df:2d:b3:8b:6c:fc:55:98:5c:9a:90:fb:c1:cf:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 22 02:55:00 2025 GMT Not After : Jul 21 03:00:00 2026 GMT Subject: CN=33D5F7744E5B543734E56E3900B3B08D2BEF7E7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:31:7f:65:82:03:76:d2:a1:e4:c4:e6:37:9a: 90:dd:22:4d:7a:81:9e:57:62:db:d1:54:60:ec:55: 03:b3:7d:31:87:f2:88:45:90:62:e3:dc:3d:c4:cc: e6:9c:af:bc:7d:78:e4:11:5d:6a:9f:89:69:63:69: 64:c1:b2:af:a4:b1:66:f8:2f:04:ac:bf:e7:8e:11: b5:aa:cc:ce:af:0d:1d:67:15:37:96:25:e3:b4:98: aa:a3:98:16:02:8e:93:d9:65:07:8d:72:a8:1b:2f: b0:53:3c:3b:75:83:81:00:25:ba:d9:41:d6:a7:a3: c4:0a:3e:d9:54:52:67:e4:c0:5f:0c:d5:3a:ba:82: f8:6d:97:54:c3:ab:7d:41:ae:c4:ff:86:89:18:25: 70:34:91:f4:52:bc:4b:a5:7a:42:c5:38:42:58:80: ac:ce:24:06:ca:59:ea:76:ac:c1:98:89:33:b1:39: 16:ff:73:0c:6e:5e:e9:23:44:f4:65:e1:fc:61:df: ef:cb:a4:73:75:a7:ca:a8:32:f9:c6:2e:1a:8d:df: 85:b8:af:91:e6:e3:20:87:bd:54:49:09:d3:03:06: 84:63:29:f6:1a:45:7e:dc:ef:19:fa:91:e8:d7:df: 89:61:c8:8f:5f:72:29:ee:d2:3b:db:48:f3:49:1e: bc:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:D5:F7:74:4E:5B:54:37:34:E5:6E:39:00:B3:B0:8D:2B:EF:7E:7C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS141070.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.249.0/24 Signature Algorithm: sha256WithRSAEncryption 09:94:5b:51:4c:79:28:cb:66:56:59:1a:7c:2b:25:82:d1:49: 7e:44:ab:3e:6e:a9:74:aa:52:45:79:63:57:f0:98:b8:2d:a4: 4c:d3:ac:87:bc:de:c8:45:0a:ee:91:2a:91:00:9a:a8:1e:6f: a7:d3:23:db:ee:23:85:d3:e4:3f:27:70:26:98:82:19:ee:57: 1b:a7:47:03:32:50:09:eb:08:e3:ab:37:9d:0f:7a:0c:3d:f6: c6:64:a6:f2:2c:b6:d1:a2:0f:60:05:8a:f9:87:51:71:06:cc: 89:96:58:60:3f:80:4d:51:5d:4e:1a:14:9f:de:a0:a7:f8:5f: f5:fb:ab:b9:a1:ef:e7:b0:9c:9e:5c:73:5b:5a:d4:94:01:6b: c3:11:cc:bf:e2:db:e5:1c:05:a5:f6:0c:a1:8c:0f:52:f7:0c: d7:ad:f7:b8:32:9c:a3:f9:9f:d5:5d:00:3a:ec:e7:2f:3a:76: 9e:e8:6b:3b:ef:bb:98:fa:75:72:84:90:cf:ac:89:26:18:76: fe:44:72:65:47:0b:69:e1:36:d0:5e:a8:cf:1c:e3:9d:fc:7a: 2d:f5:9d:64:23:13:b2:82:de:1e:33:aa:88:5f:69:03:8e:5a: ef:fd:16:cc:9c:da:67:79:32:99:79:70:c5:63:ef:fd:18:77: 1d:bd:bf:db -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUDqWUFHzfLbOLbPxVmFyakPvBz3YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcyMjAyNTUwMFoX DTI2MDcyMTAzMDAwMFowMzExMC8GA1UEAxMoMzNENUY3NzQ0RTVCNTQzNzM0RTU2 RTM5MDBCM0IwOEQyQkVGN0U3QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANAxf2WCA3bSoeTE5jeakN0iTXqBnldi29FUYOxVA7N9MYfyiEWQYuPcPcTM 5pyvvH145BFdap+JaWNpZMGyr6SxZvgvBKy/544RtarMzq8NHWcVN5Yl47SYqqOY FgKOk9llB41yqBsvsFM8O3WDgQAlutlB1qejxAo+2VRSZ+TAXwzVOrqC+G2XVMOr fUGuxP+GiRglcDSR9FK8S6V6QsU4QliArM4kBspZ6naswZiJM7E5Fv9zDG5e6SNE 9GXh/GHf78ukc3Wnyqgy+cYuGo3fhbivkebjIIe9VEkJ0wMGhGMp9hpFftzvGfqR 6NffiWHIj19yKe7SO9tI80kevHUCAwEAAaOCAdAwggHMMB0GA1UdDgQWBBQz1fd0 TltUNzTlbjkAs7CNK+9+fDAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MTA3MC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAGel+TANBgkqhkiG9w0BAQsFAAOCAQEACZRbUUx5KMtmVlkafCsl gtFJfkSrPm6pdKpSRXljV/CYuC2kTNOsh7zeyEUK7pEqkQCaqB5vp9Mj2+4jhdPk PydwJpiCGe5XG6dHAzJQCesI46s3nQ96DD32xmSm8iy20aIPYAWK+YdRcQbMiZZY YD+ATVFdThoUn96gp/hf9furuaHv57CcnlxzW1rUlAFrwxHMv+Lb5RwFpfYMoYwP UvcM1633uDKco/mf1V0AOuznLzp2nuhrO++7mPp1coSQz6yJJhh2/kRyZUcLaeE2 0F6ozxzjnfx6LfWdZCMTsoLeHjOqiF9pA45a7/0WzJzaZ3kymXlwxWPv/Rh3Hb2/ 2w== -----END CERTIFICATE-----Generated at Wed Aug 6 03:57:39 2025 by rpki-client